CVE-2012-6277
First published: Fri Feb 21 2020(Updated: )
Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16, as used in Symantec Mail Security for Microsoft Exchange before 6.5.8, Symantec Mail Security for Domino before 8.1.1, Symantec Messaging Gateway before 10.0.1, Symantec Data Loss Prevention (DLP) before 11.6.1, IBM Notes 8.5.x, IBM Lotus Domino 8.5.x before 8.5.3 FP4, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, related to "a number of underlying issues" in which "some of these cases demonstrated memory corruption with attacker-controlled input and could be exploited to run arbitrary code."
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Domino | >=8.5.0<=8.5.3.6 | |
| IBM Notes | >=8.5<=8.5.3 | |
| Symantec Data Loss Prevention Endpoint | >=11.0<11.6.1 | |
| Symantec Data Loss Prevention Enforce\/detection Servers | >=11.0<11.6.1 | |
| Symantec Data Loss Prevention Enforce\/detection Servers | >=11.0<11.6.1 | |
| Symantec Mail Security | <=6.5.7 | |
| Symantec Mail Security | <=8.1.0 | |
| Symantec Mail Security | =6.5.7 | |
| Symantec Messaging Gateway | >=9.5<10.0.1 | |
| Hp Autonomy Keyview Idol | <10.16 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.symantec.com/us/en/article.symsa1262.html
- https://tools.cisco.com/security/center/viewAlert.x?alertId=27482
- https://vulmon.com/vulnerabilitydetails?qid=CVE-2012-6277
- https://www.energy.gov/cio/articles/v-118-ibm-lotus-domino-multiple-vulnerabilities
- https://www.ibm.com/blogs/psirt/security-bulletin-security-vulnerabilities-addressed-in-ibm-notes-9-0-cve-2011-3026-cve-2012-6349-cve-2012-6277/
- https://www.kb.cert.org/vuls/id/849841/
- https://www.securityfocus.com/bid/56610
- https://www.tenable.com/plugins/nessus/67192
Frequently Asked Questions
What is CVE-2012-6277?
CVE-2012-6277 refers to multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16.
Which software are affected by CVE-2012-6277?
The software affected by CVE-2012-6277 include Symantec Mail Security for Microsoft Exchange, Symantec Mail Security for Domino, Symantec Messaging Gateway, Symantec Data Loss Prevention (DLP), IBM Notes, and Autonomy KeyView IDOL.
What is the severity of CVE-2012-6277?
CVE-2012-6277 has a severity rating of 7.8, which is considered critical.
How can I fix CVE-2012-6277?
To fix CVE-2012-6277, it is recommended to update Autonomy KeyView IDOL to version 10.16 or later and apply the necessary patches for the affected software.
Where can I find more information about CVE-2012-6277?
You can find more information about CVE-2012-6277 on Symantec's support website, Cisco's security center, and Vulmon's vulnerability details page.
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/tags
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm domino
- version/ibm domino/8.5.0
- version/ibm domino/8.5.3.6
- canonical/ibm notes
- version/ibm notes/8.5
- version/ibm notes/8.5.3
- vendor/symantec
- canonical/symantec data loss prevention endpoint
- version/symantec data loss prevention endpoint/11.0
- canonical/symantec data loss prevention enforce\/detection servers
- version/symantec data loss prevention enforce\/detection servers/11.0
- canonical/symantec mail security
- version/symantec mail security/6.5.7
- version/symantec mail security/8.1.0
- canonical/symantec messaging gateway
- version/symantec messaging gateway/9.5
- vendor/hp
- canonical/hp autonomy keyview idol